How to disable core file dumps in docker container
My PHP container runs puppeteer to generate PDF. By generating a PDF document, it also creates two core dump files inside my container. I am not sure where they actually come from.
The host/server is CentOS 7.
I've checked following:
- No application error log, Browsershot/puppeteer is running without errors.
- No error log (e.g. segfault) found in
/var/log/messages
I've tried to disable core dumps
By following Disable core dumps section of https://linux-audit.com/understand-and-configure-core-dumps-work-on-linux/, I've done:
- Adding following content to
/etc/security/limits.conf
* soft core 0
* hard core 0
Created a disable-core-dumps.sh by:
echo “ulimit -c 0 > /dev/null 2>&1” > /etc/profile.d/disable-coredumps.shAdded following content to
/etc/systemd/coredump.conf
[Coredump]
Storage=none
ProcessSizeMax=0
And reboot the server and the container.
I've also tried to set
ulimit -c 0inside the container (alpine)
None of the tricks above work for me. Everytime the puppeteer generates a PDF it always create two core dump files like below:
core.131 core.52
The core files look like:
Can anyone helps me to disable the core dumps? Thanks a lot.
You have to start your container with the option --ulimit core=0 to disable coredumps.
Reference: https://docs.docker.com/engine/reference/commandline/run/#set-ulimits-in-container---ulimit
Example
On the host, temporarily set the coredump path to /tmp for verification:
echo '/tmp/core.%e.%p' | sudo tee /proc/sys/kernel/core_pattern
Start a container as usual and force a core dump:
docker run --rm -it bash
(inside the container)
# yes > /dev/null &
# kill -SIGABRT $(pidof yes)
# ls /tmp
(shows core.yes.<pid>)
Now, with --ulimit core=0:
docker run --ulimit core=0 --rm -it bash
(inside the container)
# yes > /dev/null &
# kill -SIGABRT $(pidof yes)
# ls /tmp
(No entries)
- django-environ and Postgres environment for docker
- Docker build using old Docker Image present locally with same tag and different sha when referenced in FROM command in new Dockerfile
- Unable to access my minikube cluster from the browser (❗ Because you are using a Docker driver on windows, the terminal needs to be open to run it.)
- Docker apt-get update fails
- Error response from daemon: network myapp not found
- Docker-compose and .dockerignore
- Not able to pass --add-opens jvm arguments in docker image
- Docker custom program stop
- How to reference another docker service from Dockerfile
- error MSB3073: The command "npm install" exited with code 1
- Laravel Sail is not working properly in Ubuntu 20.04 LTS
- Dockerized drupal renders fine locally but not when proxy-passed in Apache
- How to expose a Docker network to the host machine?
- How to see docker image contents
- How to execute command from one docker container to another
- Docker Host Not Found
- qemu-x86_64: Could not open '/lib64/ld-linux-x86-64.so.2': No such file or directory in alpine linux on M1
- Stopping Vmmem from using RAM
- Can't run Curl command inside my Docker Container
- How to create named and latest tag in Docker?
- What is the difference between C.UTF-8 and en_US.UTF-8 locales?
- Where are pip dependencies installed in a docker image?
- How to create Azure Devops Service Connection Docker Registry Type Other
- Copying files to a container with Docker Compose
- Springboot application cannot connect to zeebe when starting everything from docker compose
- How to pass secret via dockerfile mount?
- What is docker's scratch image?
- docker with btrfs ubuntu
- How to retain docker alpine container after "exit" is used?
- Sourcing ~/.bashrc doesn't source included script